Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/042c33-ab6b-48be-a492-66849019627e/1/201_0Le5DDIMiXskQtbIoQo7RKI.roa
File: 201_0Le5DDIMiXskQtbIoQo7RKI.roa (raw, json)
Hash identifier: TUYRG1XiSz+OMTHNxGdJ7kSrphnJs0Pj9QUGFTs7ixQ=
Subject key identifier: DB:4D:7F:D0:B7:B9:0C:32:0C:89:7B:24:42:D6:C8:A1:0A:3B:44:A2
Certificate issuer: /CN=c868ca82147ed2277b4bcc69a5285bae735f2e44
Certificate serial: 1698B3FC
Authority key identifier: C8:68:CA:82:14:7E:D2:27:7B:4B:CC:69:A5:28:5B:AE:73:5F:2E:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yGjKghR-0id7S8xppShbrnNfLkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/042c33-ab6b-48be-a492-66849019627e/1/201_0Le5DDIMiXskQtbIoQo7RKI.roa
Signing time: Mon 27 Jun 2022 13:19:42 +0000
ROA not before: Mon 27 Jun 2022 13:19:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206296
IP address blocks: 91.92.18.0/23 maxlen: 23
80.240.184.0/22 maxlen: 22
185.189.20.0/22 maxlen: 24
45.65.104.0/21 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 379106300 (0x1698b3fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c868ca82147ed2277b4bcc69a5285bae735f2e44
Validity
Not Before: Jun 27 13:19:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db4d7fd0b7b90c320c897b2442d6c8a10a3b44a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:fb:e4:87:2e:b6:f3:f3:6c:f4:48:33:f9:52:
92:d3:1d:fd:e9:ba:d5:d5:45:a2:5d:9d:f5:26:3e:
a8:2b:db:89:f9:b4:c9:78:bd:51:6d:b8:f9:b3:19:
4c:c5:64:08:c3:72:9d:d6:e1:12:42:84:eb:24:79:
46:98:4b:b2:aa:ed:2a:01:e8:1f:39:ce:69:6a:8e:
b4:cc:51:56:0c:a6:3a:f0:a7:5d:5f:b6:9d:d2:b2:
51:43:86:c0:0e:2c:cd:6d:91:d7:5d:4c:22:b7:3e:
0c:bd:ed:df:1e:3e:d7:98:1b:14:e9:d2:6c:e7:7b:
05:87:d9:94:e6:e3:38:17:bc:a1:57:e2:ab:ad:55:
d8:0c:03:06:0b:68:16:32:a6:f5:6d:44:91:6e:ee:
10:0e:28:c1:9c:f1:22:a3:c3:c6:77:46:3b:ab:1d:
14:e7:2b:17:e2:97:9b:cf:12:4e:d6:a3:7b:68:fb:
17:e4:51:82:86:aa:c6:74:2e:37:86:f7:61:a9:17:
9f:b6:9e:2e:cc:e2:15:be:6a:06:bc:7b:5f:ba:ea:
12:66:20:d3:0d:53:f5:7d:4a:21:92:07:b4:cf:7c:
7c:29:f5:43:e1:ad:76:d1:07:35:d1:b1:05:97:68:
ab:94:0b:b5:2c:ec:c2:3a:17:17:c1:4c:b3:d7:5f:
18:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:4D:7F:D0:B7:B9:0C:32:0C:89:7B:24:42:D6:C8:A1:0A:3B:44:A2
X509v3 Authority Key Identifier:
keyid:C8:68:CA:82:14:7E:D2:27:7B:4B:CC:69:A5:28:5B:AE:73:5F:2E:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yGjKghR-0id7S8xppShbrnNfLkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/042c33-ab6b-48be-a492-66849019627e/1/201_0Le5DDIMiXskQtbIoQo7RKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/042c33-ab6b-48be-a492-66849019627e/1/yGjKghR-0id7S8xppShbrnNfLkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.104.0/21
80.240.184.0/22
91.92.18.0/23
185.189.20.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:9a:b7:10:17:e8:df:d9:84:32:d1:a2:13:db:d2:59:45:4f:
5f:92:e4:43:f7:c4:d3:30:9a:c8:20:88:36:e7:0a:a7:4a:79:
81:ce:f2:9d:4a:9f:01:96:9a:96:b0:c1:80:3e:aa:b8:d0:31:
83:11:c9:75:7e:6a:47:13:ee:bf:db:60:f9:e7:f1:42:5f:04:
4c:01:80:c4:51:70:15:07:a3:c4:7c:62:c1:ea:07:88:3b:0a:
c0:8b:fe:29:61:7b:d8:41:07:c6:59:07:08:1b:9b:92:ec:51:
c0:fb:3f:9c:67:67:6a:cd:d6:da:fc:76:e3:06:b1:6d:a2:55:
67:aa:e6:37:3d:c8:a6:bb:ab:03:ce:fe:d4:9f:6a:ea:ed:bb:
cc:7f:7a:49:8e:2a:73:aa:71:bc:5b:9e:dc:b7:a0:a0:de:89:
ce:0e:87:6c:50:d0:e3:ed:4e:7c:50:f3:11:88:2f:7c:b8:fb:
1a:a8:38:9f:32:28:cd:97:20:fa:d9:37:e3:46:20:91:b8:b1:
83:f8:2b:d1:6c:56:2d:8f:02:36:ef:1c:a8:d1:02:17:93:27:
2c:48:4f:ab:fe:ce:56:d9:c2:80:ae:d9:ad:8e:42:04:16:fa:
7b:06:d0:1b:96:af:df:21:31:57:49:fb:ae:c0:36:4e:9b:69:
8c:43:20:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:13 2024 by rpki-client on console-ams.rpki-client.org